Hello.
I’m using a 2011UiAS-2HnD with ROS 6.32.2 as a L2TP VPN server in my company. Here are the settings:
IPsec:
phase1: 3DES / SHA1 / no-PSK / lifetime 30 min
phase2: 3DES / SHA1 / main l2tp / modp1024 / lifetime 1d / DPD 120s + 5 retries / obey / port override
L2TP:
Max MTU: 1450 (I tried also with 1250)
Max MRU: 1450 (I tried also with 1250)
MsCHAPv2
Change MSS: YES
Use Compression: YES
The VPN clients get assigned IP addresses from the 10.0.107.0/24 address space. All my servers are in 10.0.108.0/24 address space.
I’m able to connect from my Windows 8.1 machine using the built-in L2TP client. The clients When connected, I’m able to ping all server, as well I’m able to use Windows Sharing on all Win 2012 and Win 2008 servers that I tried. Unfortunately, I’m experiencing problems accessing Windows shares on a Windows 2k3 server.
The symptom is, the connection is established to the server (\server), and I can see all the shares. Most of the times, I can also access the first level of the share (\server\data), but I can’t access any folder within it - it just takes forever and than it fails.
Some additional notes:
- Telnet to the problematic server to both ports TCP.139 and TCP.445 is working.
- I’m sure I’m using the correct password.
- I also tried authenticating first using
net use \server /USER:DOMAIN\Administrator
, but this didn’t help. Actually encountered also the
121 - The semaphore timeout period has expired
error when authenticating << this happen a few times, but I don’t know how to reproduce.
- I tried disabling NetBIOS over TCP in the VPN connection on my Windows 8.1, but had no luck with it.
Please, can someone point me to the right direction what else should I check or how can I solve the described problem.
Sincerely,
Damir